{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-41075","assignerOrgId":"286789f9-fbc2-4510-9f9a-43facdede74c","state":"PUBLISHED","assignerShortName":"apple","dateReserved":"2023-08-22T18:10:00.332Z","datePublished":"2024-01-10T22:03:36.440Z","dateUpdated":"2024-08-26T20:09:19.352Z"},"containers":{"cna":{"problemTypes":[{"descriptions":[{"lang":"en","description":"An app may be able to execute arbitrary code with kernel privileges"}]}],"affected":[{"vendor":"Apple","product":"macOS","versions":[{"version":"unspecified","status":"affected","lessThan":"13.3","versionType":"custom"}]},{"vendor":"Apple","product":"iOS and iPadOS","versions":[{"version":"unspecified","status":"affected","lessThan":"16.4","versionType":"custom"}]},{"vendor":"Apple","product":"macOS","versions":[{"version":"unspecified","status":"affected","lessThan":"12.6","versionType":"custom"}]},{"vendor":"Apple","product":"macOS","versions":[{"version":"unspecified","status":"affected","lessThan":"11.7","versionType":"custom"}]},{"vendor":"Apple","product":"iOS and iPadOS","versions":[{"version":"unspecified","status":"affected","lessThan":"15.7","versionType":"custom"}]}],"descriptions":[{"lang":"en","value":"A type confusion issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4. An app may be able to execute arbitrary code with kernel privileges."}],"references":[{"url":"https://support.apple.com/en-us/HT213670"},{"url":"https://support.apple.com/en-us/HT213676"},{"url":"https://support.apple.com/en-us/HT213677"},{"url":"https://support.apple.com/en-us/HT213675"},{"url":"https://support.apple.com/en-us/HT213673"}],"providerMetadata":{"orgId":"286789f9-fbc2-4510-9f9a-43facdede74c","shortName":"apple","dateUpdated":"2024-01-10T22:03:36.440Z"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T18:46:11.671Z"},"title":"CVE Program Container","references":[{"url":"https://support.apple.com/en-us/HT213670","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT213676","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT213677","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT213675","tags":["x_transferred"]},{"url":"https://support.apple.com/en-us/HT213673","tags":["x_transferred"]}]},{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-843","lang":"en","description":"CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')"}]}],"affected":[{"vendor":"apple","product":"ipados","cpes":["cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*","cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"15.0","status":"affected","lessThan":"15.7.4","versionType":"custom"},{"version":"16.0","status":"affected","lessThan":"16.4","versionType":"custom"}]},{"vendor":"apple","product":"macos","cpes":["cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*"],"defaultStatus":"unknown","versions":[{"version":"11.0","status":"affected","lessThan":"11.7.5","versionType":"custom"},{"version":"12.0","status":"affected","lessThan":"12.6.4","versionType":"custom"},{"version":"13.0","status":"affected","lessThan":"13.3","versionType":"custom"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":7.8,"attackVector":"LOCAL","baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","integrityImpact":"HIGH","userInteraction":"REQUIRED","attackComplexity":"LOW","availabilityImpact":"HIGH","privilegesRequired":"NONE","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2024-08-26T20:04:14.304102Z","id":"CVE-2023-41075","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-08-26T20:09:19.352Z"}}]}}